Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/nY1KpAhtH0cD28KXZ0OM4Oo7ieY.roa
File: nY1KpAhtH0cD28KXZ0OM4Oo7ieY.roa (raw, json)
Hash identifier: eRViaRviU3oVy5mvlWMB99lH5ZAjn0O4Le0r+Ft27Ng=
Subject key identifier: 9D:8D:4A:A4:08:6D:1F:47:03:DB:C2:97:67:43:8C:E0:EA:3B:89:E6
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018D0BD9D215EB610EDA024C0793579D0321
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/nY1KpAhtH0cD28KXZ0OM4Oo7ieY.roa
Signing time: Mon 15 Jan 2024 06:40:40 +0000
ROA not before: Mon 15 Jan 2024 06:40:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44901
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 06:46:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0b:d9:d2:15:eb:61:0e:da:02:4c:07:93:57:9d:03:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 15 06:40:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d8d4aa4086d1f4703dbc29767438ce0ea3b89e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ed:6e:27:39:7b:a9:45:dd:80:1e:07:c5:1c:
3a:e6:4e:d9:d2:cd:e7:06:ae:91:26:d0:c1:24:10:
04:25:89:56:47:7a:28:9e:96:ae:f2:be:51:fd:1a:
06:95:f4:b2:84:a4:0d:2b:0f:6d:7a:6b:96:3e:dd:
57:5d:9d:4e:b6:25:d4:7d:e9:b6:ef:12:5a:aa:87:
33:27:d6:f2:8f:b2:b2:e8:eb:2d:e7:2f:26:13:a9:
67:3e:54:98:4c:cd:81:af:c6:6d:ed:de:d9:e9:b9:
55:11:d5:ff:92:c8:8e:e4:01:3b:42:53:26:10:5d:
b5:f1:fd:87:a0:ae:50:15:d1:21:44:3c:0d:ee:fd:
99:45:43:e8:77:96:05:6c:73:9f:6f:be:ba:28:d5:
9a:52:9b:67:d4:6c:e1:80:9e:ca:10:76:3b:04:4c:
77:71:1b:f0:56:9d:08:88:c6:9e:91:20:23:e9:4b:
69:c5:cc:c8:6f:48:06:83:02:cc:ef:90:fd:20:c6:
ad:34:e9:75:54:e0:1b:ae:20:9a:c9:0b:b3:13:98:
85:2a:78:00:bc:87:39:82:93:00:68:1d:7a:55:c7:
81:4f:b6:01:17:f0:a1:84:d1:ed:d9:ec:32:40:57:
ec:35:a4:9e:ae:eb:98:49:13:40:74:bd:52:39:32:
81:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8D:4A:A4:08:6D:1F:47:03:DB:C2:97:67:43:8C:E0:EA:3B:89:E6
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/nY1KpAhtH0cD28KXZ0OM4Oo7ieY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
89:68:ae:cb:b9:e6:f8:04:4b:5f:fe:4b:a2:d0:77:d0:9b:b8:
50:1a:b3:92:f5:37:8b:4c:70:7e:65:a8:17:c9:44:39:25:a5:
fb:31:28:03:4d:b2:52:2e:0e:c1:07:8b:d6:d2:e0:44:59:15:
d5:2b:78:20:71:54:d8:68:09:e7:ac:68:91:c6:78:4f:eb:b1:
a4:4d:f5:db:99:19:8a:67:40:70:fc:ae:58:8b:23:4e:b9:00:
ce:72:09:c6:1b:89:8f:70:6e:fb:e0:53:e6:f9:24:c4:cf:05:
f9:c0:fb:23:3c:95:ba:78:f0:e4:17:80:26:4a:9a:12:88:50:
02:ec:e7:7d:2a:d7:61:a3:56:d9:15:7e:01:ff:1b:9e:9a:40:
ca:5d:36:39:3b:3b:a8:81:b6:fd:6d:89:2e:ab:75:8d:28:4c:
c8:cb:5b:e6:bf:2e:e8:58:38:8c:80:47:3e:71:e0:e7:43:c7:
f9:e1:b9:db:c8:af:4a:76:27:da:b3:52:86:96:6f:44:84:1e:
b5:5b:65:97:26:ee:35:52:f8:3e:35:b2:62:6b:4f:05:cf:f8:
fd:2a:1e:cf:a1:d0:8f:a2:8e:cc:5c:2a:48:d2:1e:a9:bf:eb:
eb:a4:75:6a:05:05:c3:1b:57:43:04:b9:48:fc:17:11:e5:b4:
9f:aa:bf:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:20 2024 by rpki-client on console-ams.rpki-client.org